- Cybersecurity News:
-
Legion Malware Upgraded to Target SSH Servers and AWS Credentials [Ravie Lakshmanan, The Hacker News]
- New Python-Based “Legion” Hacking Tool Emerges on Telegram [Ravie Lakshmanan, The Hacker News]
- Barracuda Email Security Gateway (ESG) hacked via zero-day bug [Pierluigi Paganini, ecurity Affairs]
- Phishing Domains Tanked After Meta Sued Freenom [Brian Krebs, Krebs On Security]
-
Legion Malware Upgraded to Target SSH Servers and AWS Credentials [Ravie Lakshmanan, The Hacker News]
- Vulnerabilities & Patches:
- GitLab ‘strongly recommends’ patching max severity flaw ASAP [Bill Toulas, Bleeping Computer]
- OAuth Vulnerabilities in Widely Used Expo Framework Allowed Account Takeovers [Eduard Kovacs, Security Week]
- Hackers target 1.5M WordPress sites with cookie consent plugin exploit [Sergiu Gatlan, Bleeping Computer]
- Zyxel Issues Critical Security Patches for Firewall and VPN Products [Ravie Lakshmanan, The Hacker News]
- Breaches & Leaks:
- Free VPN Service SuperVPN Exposes 360 Million User Records [Habiba Rashid, HackRead]
- BlackByte ransomware crew lists city of Augusta after cyber ‘incident’ [Jessica Lyons Hardcastle, The Register]
- Others:
- IT employee impersonates ransomware gang to extort employer [Bill Toulas, Bleeping Computer]
- Drop in Insider Breaches Drives Decline in Intrusions at OT Organizations [Eduard Kovacs, Security Week]
- South African police can now legally use cellphone spying tools and trackers [Myles Illidge, MyBroadband]
C410 A2BE CB73 EF77 746E 9682 E2C4 91CE D20D 800F
![[TI: logo for TI accredited teams]](../assets/img/TI-Accredited_120x120.jpg)
![[FIRST.org Logo]](../assets/img/first-org-simple.png)